CISA, Australian partners warn of malicious activity targeting Microsoft access management service

A popular authentication and authorization service offered by Microsoft is “susceptible” to threat actor techniques that are enabling cyber attacks on enterprises around the world, according to recent guidance from the Cybersecurity and Infrastructure Security Agency and international partners.

“Active Directory is the most widely used authentication and authorization solution in enterprise information technology (IT) networks globally. Malicious actors routinely target Active Directory as part of efforts to compromise enterprise IT networks by escalating privileges and targeting the highest confidential...